Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: Naughty or Nice
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 9 / 11   >   >>
ThomasW452
25%
75%
ThomasW452,
User Rank: Strategist
12/1/2016 | 8:16:26 AM
Identity theft protection
The new guys taking his Identity theft protection to a whole new level
Romrix
50%
50%
Romrix,
User Rank: Apprentice
11/30/2016 | 11:25:02 PM
Winning comment.

Every year he checks his lists and every year he uses my terminal.
He only picks mine because my name is Rudolph. I just wish he'd quit honking my nose.

Joe Stanganelli
75%
25%
Joe Stanganelli,
User Rank: Ninja
11/30/2016 | 6:39:47 PM
h
"I need to file an HR complaint.  The new guy just asked me to sit on his lap."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/30/2016 | 6:38:40 PM
g (Data Protection)
"Yeah, but what if we have an outage?  At least Jesus saves."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/30/2016 | 6:36:54 PM
l
"Sure, he's fun to have around, but we really should get back to our roots and hire that guy who applied ages ago."
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
11/30/2016 | 6:22:28 PM
f
"I think this is a sign that most of us NSA analysts are about to be laid off."
mathmania
50%
50%
mathmania,
User Rank: Apprentice
11/30/2016 | 4:03:36 PM
On-time Deliverables
The new guys swears he'll have the project delivered by the 25th.
Meleon42
33%
67%
Meleon42,
User Rank: Strategist
11/30/2016 | 1:16:54 PM
privacy acts affect eveything
Now that kids are texting Santa their wishlist, Santa has to be COPA compliant. We agreed to allow him to use a secured system...you know, so ECorp gets off the naughty list.
gmadden
100%
0%
gmadden,
User Rank: Strategist
11/30/2016 | 11:32:45 AM
Browser History
Ever since Santa got a job with the NSA, more and more people have been getting coal.
Y-not!
60%
40%
Y-not!,
User Rank: Strategist
11/30/2016 | 10:28:02 AM
New algorithm
We've implemented a new "naughty or nice" algorithm based on social media feeds.

There are going to be lots of dissapointed children this year...
<<   <   Page 9 / 11   >   >>


DevSecOps: The Answer to the Cloud Security Skills Gap
Lamont Orange, Chief Information Security Officer at Netskope,  11/15/2019
Attackers' Costs Increasing as Businesses Focus on Security
Robert Lemos, Contributing Writer,  11/15/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: -when I told you that our cyber-defense was from another age
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2011-3349
PUBLISHED: 2019-11-19
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.
CVE-2019-10080
PUBLISHED: 2019-11-19
The XMLFileLookupService in NiFi versions 1.3.0 to 1.9.2 allowed trusted users to inadvertently configure a potentially malicious XML file. The XML file has the ability to make external calls to services (via XXE) and reveal information such as the versions of Java, Jersey, and Apache that the NiFI ...
CVE-2019-10083
PUBLISHED: 2019-11-19
When updating a Process Group via the API in NiFi versions 1.3.0 to 1.9.2, the response to the request includes all of its contents (at the top most level, not recursively). The response included details about processors and controller services which the user may not have had read access to.
CVE-2019-12421
PUBLISHED: 2019-11-19
When using an authentication mechanism other than PKI, when the user clicks Log Out in NiFi versions 1.0.0 to 1.9.2, NiFi invalidates the authentication token on the client side but not on the server side. This permits the user's client-side token to be used for up to 12 hours after logging out to m...
CVE-2019-19126
PUBLISHED: 2019-11-19
On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition, allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR ...